$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft File: 9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft (raw, json) Hash identifier: NOg0T+RKOAvt+APV7gIONZjJlmf7+2jjCc3MgJhmzrI= Subject key identifier: E9:50:26:C5:2D:6F:A5:CB:34:01:26:85:92:3E:AC:BD:EA:1C:10:4D Authority key identifier: F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91 Certificate issuer: /CN=A91E2F80/serialNumber=F410C483A4C8C916FFD4CF420C4C110889798891 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft Manifest number: DD Signing time: Sat 31 May 2025 05:18:07 +0000 Manifest this update: Sat 31 May 2025 05:18:06 +0000 Manifest next update: Sat 07 Jun 2025 05:18:06 +0000 Files and hashes: 1: 9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl (hash: Wlhb0ADpzUb9x+AakdyQOdsqYUeMiEna78qO+kh0iWo=) 2: DAC9D5960C7E11EF9A189E18C4F9AE02.roa (hash: cLX/WlgP7K24ucXGUUtpNzmDrPk9vKJrsn64OyHEFQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:18:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F80, serialNumber=F410C483A4C8C916FFD4CF420C4C110889798891 Validity Not Before: May 31 05:18:06 2025 GMT Not After : Jun 7 05:18:06 2025 GMT Subject: CN=683a910f-cf5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b0:6a:85:d6:34:53:fd:2c:f4:f1:4d:13:be: 2e:15:33:4c:23:f7:f1:bf:3d:b1:a9:14:fd:86:6b: b7:a7:e2:e0:3e:23:bd:84:8e:ec:69:a2:b0:11:b5: de:21:8c:e8:5a:2f:e4:fd:c3:f0:ac:59:8d:91:35: fd:74:4f:ce:4f:e1:82:be:9d:cf:c6:70:8d:eb:33: 87:39:9c:c4:ae:12:98:42:83:12:88:1a:14:37:ac: b1:81:32:6c:a2:77:50:6c:f8:f5:37:a1:c2:ad:ab: 9a:36:f6:16:fc:51:03:da:d4:33:dd:f0:2c:c0:ed: db:85:c7:33:78:13:f1:37:42:ff:c9:77:27:9a:70: df:49:9a:33:20:9a:f3:78:64:93:59:65:f7:ec:b5: 92:8a:2c:d9:b0:7e:8f:f1:a2:88:aa:cf:db:f8:03: 06:52:90:f2:e1:ac:90:71:b0:9d:07:f1:c3:97:8b: ed:8b:ff:44:cd:4c:df:3b:b4:ff:c3:8f:99:14:ac: 92:f2:df:f8:04:0a:91:3f:c3:fa:8d:95:c0:b5:50: e6:73:97:b4:f0:32:59:87:9e:0c:21:8a:52:d3:87: c1:6c:e8:59:a9:38:f7:fa:15:85:7c:00:3c:e4:e9: 95:5b:fc:80:45:29:e4:6b:87:a6:d7:e9:63:3d:9a: 71:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:50:26:C5:2D:6F:A5:CB:34:01:26:85:92:3E:AC:BD:EA:1C:10:4D X509v3 Authority Key Identifier: keyid:F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:2f:20:8c:6c:b5:2f:44:19:af:cb:15:41:98:c0:bb:f0:c0: 92:02:0f:66:9b:df:d6:47:d0:9f:79:21:60:05:dc:ec:17:7f: 5c:95:03:40:ad:a5:07:13:1c:a1:0e:d3:b4:18:df:8f:2f:30: 05:9d:42:9b:b1:3e:00:64:af:f2:70:1e:6b:d4:9a:f3:88:f5: 31:61:4a:16:eb:9f:4c:51:de:af:f0:81:7b:f0:c6:b3:72:38: 4c:fe:37:bf:e6:cc:2d:81:5a:90:ab:e0:23:cd:14:4c:49:cc: 76:e4:0c:a0:bd:58:fc:73:24:0c:76:4a:16:0e:b0:30:01:79: ac:e7:b0:04:2a:64:78:f2:e6:1e:b7:0b:95:25:8c:5a:99:ee: 33:84:3b:0a:b6:3f:97:f7:e9:0e:e7:bb:68:d9:fd:80:aa:85: 26:cb:b8:20:e7:30:2f:22:c5:9a:32:3e:cd:45:e0:12:f2:ff: 2d:15:4e:68:71:76:73:27:85:6b:19:78:f3:f6:d8:57:d0:8d: 45:9c:4d:8c:3f:94:74:bb:39:a0:a8:b0:c6:b6:95:b2:f5:e1: 4e:28:1c:16:0e:42:9f:6e:70:c3:96:ca:96:95:9f:21:fd:eb: 09:0d:08:e5:80:65:d5:5a:2b:ea:2b:52:e7:51:56:90:85:26: 21:18:b9:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGODAxMTAvBgNVBAUTKEY0MTBDNDgzQTRDOEM5MTZGRkQ0Q0Y0MjBDNEMxMTA4 ODk3OTg4OTEwHhcNMjUwNTMxMDUxODA2WhcNMjUwNjA3MDUxODA2WjAYMRYwFAYD VQQDEw02ODNhOTEwZi1jZjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnLBqhdY0U/0s9PFNE74uFTNMI/fxvz2xqRT9hmu3p+LgPiO9hI7saaKwEbXe IYzoWi/k/cPwrFmNkTX9dE/OT+GCvp3PxnCN6zOHOZzErhKYQoMSiBoUN6yxgTJs ondQbPj1N6HCrauaNvYW/FED2tQz3fAswO3bhcczeBPxN0L/yXcnmnDfSZozIJrz eGSTWWX37LWSiizZsH6P8aKIqs/b+AMGUpDy4ayQcbCdB/HDl4vti/9EzUzfO7T/ w4+ZFKyS8t/4BAqRP8P6jZXAtVDmc5e08DJZh54MIYpS04fBbOhZqTj3+hWFfAA8 5OmVW/yARSnka4em1+ljPZpxCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlQJsUt b6XLNAEmhZI+rL3qHBBNMB8GA1UdIwQYMBaAFPQQxIOkyMkW/9TPQgxMEQiJeYiR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkY4MC85NEM1NEI4MDAz OTUxMUVGODVCNjlGNEVDNEY5QUUwMi85QkRFZzZUSXlSYl8xTTlDREV3UkNJbDVp SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlCREVnNlRJeVJiXzFNOUNERXdSQ0lsNWlKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkY4MC85NEM1NEI4MDAzOTUxMUVGODVCNjlGNEVDNEY5QUUwMi85QkRFZzZUSXlS Yl8xTTlDREV3UkNJbDVpSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPLyCMbLUvRBmvyxVBmMC78MCSAg9mm9/WR9CfeSFgBdzsF39clQNA raUHExyhDtO0GN+PLzAFnUKbsT4AZK/ycB5r1JrziPUxYUoW659MUd6v8IF78Maz cjhM/je/5swtgVqQq+AjzRRMScx25AygvVj8cyQMdkoWDrAwAXms57AEKmR48uYe twuVJYxame4zhDsKtj+X9+kO57to2f2AqoUmy7gg5zAvIsWaMj7NReAS8v8tFU5o cXZzJ4VrGXjz9thX0I1FnE2MP5R0uzmgqLDGtpWy9eFOKBwWDkKfbnDDlsqWlZ8h /esJDQjlgGXVWivqK1LnUVaQhSYhGLnv -----END CERTIFICATE-----Generated at Sat May 31 17:47:16 2025 by rpki-client